On Mon, Oct 21, 2002, Karl-Michael Werzowa wrote: > Thanks, it works. > > > Added to [ new_oids ]: > mycustomexension=1.2.3.4.5 > entered into [ my_extensions ] > mycustomextension=DER:01:01:FF > used x509_extensions=my_extensions where needed. > (names are dummynames) > > Nevertheless, in the certs one only sees the oid. Suppose, that cleartext > will be only available for standard-extensions. > >
Yes because OpenSSL has no way of knowing how to translate the encoded extension to a human readable form for unsupported extensions. It can print out the asn1parsed result of unsupported extensions by doing (for example): openssl x509 -in cert.pem -noout -text -certopt ext_parse Steve. -- Dr. Stephen Henson [EMAIL PROTECTED] OpenSSL Project http://www.openssl.org/~steve/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
